CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact v...

9.8CVSS8.5AI score0.03231EPSS

Exploits1References2

Tenable Nessus•added 2025/08/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2011-1412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sys/sysunix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game...

7.5CVSS6.1AI score0.05468EPSS

Exploits2References2

Tenable Nessus•added 2025/08/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2011-3012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions...

10CVSS6.3AI score0.0815EPSS

Exploits2References2

Tenable Nessus•added 2025/08/24 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2011-2764

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The FSCheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in World of Padman, Smokin' Guns, OpenArena,...

10CVSS6.2AI score0.05778EPSS

Exploits2References2

OSV•added 2024/06/15 12:0 a.m.•8 views

OPENSUSE-SU-2024:10863-1 ioquake3-1.36+git.20210720-1.2 on GA media

These are all security issues fixed in the ioquake3-1.36+git.20210720-1.2 package on the GA media of openSUSE Tumbleweed...

7.6CVSS6.2AI score0.04065EPSS

Exploits1References2

OpenVAS•added 2022/01/28 12:0 a.m.•18 views

Mageia: Security Advisory (MGASA-2018-0148)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03231EPSS

Exploits1References4

Veracode•added 2020/12/06 4:19 a.m.•9 views

Sandbox Escape

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

7.8CVSS4.3AI score0.00116EPSS

Exploits0References11Affected Software1

Mageia•added 2018/02/28 1:55 p.m.•24 views

Updated ioquake3 packages fix security vulnerability

It was discovered that ioquake3 contained a read buffer overflow that allows remote attackers to cause a denial of service CVE-2017-11721...

9.8CVSS5.6AI score0.03231EPSS

Exploits1References2

OSV•added 2018/02/28 1:55 p.m.•3 views

MGASA-2018-0148 Updated ioquake3 packages fix security vulnerability

It was discovered that ioquake3 contained a read buffer overflow that allows remote attackers to cause a denial of service CVE-2017-11721...

9.8CVSS9.3AI score0.03231EPSS

Exploits1References3

OpenVAS•added 2018/01/28 12:0 a.m.•13 views

Debian: Security Advisory (DLA-979)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References3

Tenable Nessus•added 2017/08/21 12:0 a.m.•23 views

Debian DSA-3948-1 : ioquake3 - security update

A read buffer overflow was discovered in the idtech3 Quake III Arena family of game engines. This allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted packet. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

9.8CVSS8.8AI score0.03231EPSS

Exploits1References4

OSV•added 2017/08/19 12:0 a.m.•18 views

DSA-3948-1 ioquake3 - security update

Bulletin has no description...

9.8CVSS9.4AI score0.03231EPSS

Exploits1

OpenVAS•added 2017/08/18 12:0 a.m.•12 views

Debian: Security Advisory (DSA-3948-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03231EPSS

Exploits1References3

OSV•added 2017/08/03 8:29 a.m.•0 views

UBUNTU-CVE-2017-11721

Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted packet...

9.8CVSS5.9AI score0.03231EPSS

Exploits1References3

Prion•added 2017/08/03 8:29 a.m.•5 views

Buffer overflow

Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted packet...

7.5CVSS9.7AI score0.03231EPSS

Exploits1References3Affected Software1

NVD•added 2017/08/03 8:29 a.m.•8 views

CVE-2017-11721

Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted packet...

9.8CVSS9.8AI score0.03231EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by